private bool UpdUsr() { string UpdColmn = "Name=@Name,B_Date=@B_Date,E_Date=@E_Date,ZT_Admin_Id=@ZT_Admin_Id,Status_Id=@Status_Id,Usr__Id=@Usr__Id,Role__Id=@Role__Id,Create__Date=@Create__Date,Remark=@Remark"; if (!string.IsNullOrEmpty(this.txtPwd.Text)) { UpdColmn += ",Pwd=@Pwd "; } string _sqlStr = string.Format("Update Usr1 set {0} Where ZT_Id=@ZT_Id and Usr_Id=@Usr_Id ; ", UpdColmn); string _sqlCompany = " Delete from UsrCompany1 Where ZT_Id=@ZT_Id and Usr_Id=@Usr_Id ;"; string _sqlRole = " "; DataTable _dt = this.dataGridView1.DataSource as DataTable; for (int i = 0; i < _dt.Rows.Count; i++) { if (!string.IsNullOrEmpty(_dt.Rows[i]["Company_Id"].ToString())) { _sqlCompany += "If ((select 1 from UsrCompany1 where ZT_Id=@ZT_Id and Usr_Id=@Usr_Id and Company_Id='" + _dt.Rows[i]["Company_Id"].ToString() + "') is null) " + "Insert Into UsrCompany1(ZT_Id,Usr_Id,Company_Id,Role__Id,Usr__Id,Create__Date)" + "VALUES(@ZT_Id,@Usr_Id,'" + _dt.Rows[i]["Company_Id"].ToString() + "',@Role__Id,@Usr__Id,@Create__Date) ;"; } if (!string.IsNullOrEmpty(_dt.Rows[i]["Company_Id"].ToString()) && !string.IsNullOrEmpty(_dt.Rows[i]["Role_Id"].ToString())) { _sqlRole = " Delete from UsrRole Where Company_Id='" + _dt.Rows[i]["Company_Id"].ToString() + "' and Usr_Id=@Usr_Id;"; _sqlRole += "If ((select 1 from UsrRole where Usr_Id=@Usr_Id and Company_Id='" + _dt.Rows[i]["Company_Id"].ToString() + "'" + "and Role_Id='" + _dt.Rows[i]["Role_Id"].ToString() + "') is null)" + "Insert Into UsrRole(Usr_Id,Company_Id,Role_Id,Role__Id,Usr__Id,Create__Date)" + "VALUES(@Usr_Id,'" + _dt.Rows[i]["Company_Id"].ToString() + "','" + _dt.Rows[i]["Role_Id"].ToString() + "',@Role__Id,@Usr__Id,@Create__Date) ; "; } } SqlParameter[] paras = new SqlParameter[12]; paras[0] = new SqlParameter("@ZT_Id", SqlDbType.VarChar, 50); paras[0].Value = "RMOTest"; paras[1] = new SqlParameter("@Usr_Id", SqlDbType.VarChar, 50); paras[1].Value = this.txtUsrId.Text.Trim(); paras[2] = new SqlParameter("@Name", SqlDbType.VarChar, 100); paras[2].Value = this.txtName.Text.Trim(); paras[3] = new SqlParameter("@Pwd", SqlDbType.VarChar, 100); paras[3].Value = CommomHelper.GetMD5(this.txtPwd.Text.Trim()); paras[4] = new SqlParameter("@B_Date", SqlDbType.DateTime); paras[4].Value = System.DateTime.Now; paras[5] = new SqlParameter("@E_Date", SqlDbType.DateTime); paras[5].Value = DBNull.Value; paras[6] = new SqlParameter("@ZT_Admin_Id", SqlDbType.VarChar, 1); paras[6].Value = ""; paras[7] = new SqlParameter("@Status_Id", SqlDbType.VarChar, 5); paras[7].Value = ""; paras[8] = new SqlParameter("@Usr__Id", SqlDbType.VarChar, 50); paras[8].Value = LoginInfo._Usr_id; paras[9] = new SqlParameter("@Role__Id", SqlDbType.VarChar, 50); paras[9].Value = ((LoginInfo._ZT_Admin_Id == "Z") ? "" : LoginInfo._Usr_Role); paras[10] = new SqlParameter("@Create__Date", SqlDbType.DateTime); paras[10].Value = System.DateTime.Now; paras[11] = new SqlParameter("@Remark", SqlDbType.Text); paras[11].Value = ""; if (SqlHelper.ExecuteQueryTrans(_sqlCompany + _sqlRole + _sqlStr, paras)) { return(true); } else { return(false); } }